View Javadoc

1   /**
2    * Copyright 2011 The Kuali Foundation Licensed under the
3    * Educational Community License, Version 2.0 (the "License"); you may
4    * not use this file except in compliance with the License. You may
5    * obtain a copy of the License at
6    *
7    * http://www.osedu.org/licenses/ECL-2.0
8    *
9    * Unless required by applicable law or agreed to in writing,
10   * software distributed under the License is distributed on an "AS IS"
11   * BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express
12   * or implied. See the License for the specific language governing
13   * permissions and limitations under the License.
14   */
15  
16  package org.kuali.mobility.tours.controllers;
17  
18  import java.io.ByteArrayOutputStream;
19  import java.io.IOException;
20  import java.io.OutputStream;
21  import java.io.UnsupportedEncodingException;
22  import java.net.URLEncoder;
23  import java.util.ArrayList;
24  import java.util.Collections;
25  import java.util.HashMap;
26  import java.util.HashSet;
27  import java.util.Iterator;
28  import java.util.List;
29  import java.util.Map;
30  import java.util.Set;
31  
32  import javax.servlet.http.HttpServletRequest;
33  import javax.servlet.http.HttpServletResponse;
34  
35  import net.sf.json.JSONArray;
36  import net.sf.json.JSONObject;
37  import net.sf.json.JSONSerializer;
38  import net.sf.json.JsonConfig;
39  
40  import org.apache.commons.lang.StringEscapeUtils;
41  import org.kuali.mobility.security.user.api.User;
42  import org.kuali.mobility.shared.Constants;
43  import org.kuali.mobility.tours.entity.POI;
44  import org.kuali.mobility.tours.entity.POIEmailAddress;
45  import org.kuali.mobility.tours.entity.POIPermission;
46  import org.kuali.mobility.tours.entity.POIPhoneNumber;
47  import org.kuali.mobility.tours.entity.Tour;
48  import org.kuali.mobility.tours.entity.TourPermission;
49  import org.kuali.mobility.tours.service.ToursService;
50  import org.springframework.beans.factory.annotation.Autowired;
51  import org.springframework.stereotype.Controller;
52  import org.springframework.ui.Model;
53  import org.springframework.web.bind.annotation.PathVariable;
54  import org.springframework.web.bind.annotation.RequestMapping;
55  import org.springframework.web.bind.annotation.RequestMethod;
56  import org.springframework.web.bind.annotation.RequestParam;
57  import org.springframework.web.bind.annotation.ResponseBody;
58  
59  import de.micromata.opengis.kml.v_2_2_0.Kml;
60  
61  @Controller
62  @RequestMapping("/tours")
63  public class ToursController {
64  
65  	private static org.apache.log4j.Logger LOG = org.apache.log4j.Logger.getLogger(ToursController.class);
66  
67  	@Autowired
68      private ToursService toursService;
69  
70  	//@Autowired
71  	//private AdsService adsService;
72  
73      @RequestMapping(method = RequestMethod.GET)
74      public String index(HttpServletRequest request, Model uiModel) {
75      	List<Tour> tours = toursService.findAllTours();
76      	User user = (User) request.getSession().getAttribute(Constants.KME_USER_KEY);
77      	for (Iterator<Tour> iter = tours.iterator(); iter.hasNext(); ){
78      		Tour tour = iter.next();
79      		if (!toursService.hasAccessToViewTour(user, tour)) {
80      			iter.remove();
81      		}
82      	}
83  
84      	uiModel.addAttribute("tours", tours);
85      	return "tours/home";
86      }
87  
88      @RequestMapping(value = "publish", method = RequestMethod.GET)
89      public String publish(HttpServletRequest request, Model uiModel) {
90      	User user = (User) request.getSession().getAttribute(Constants.KME_USER_KEY);
91      	if (!toursService.hasAccessToPublish(user)) {
92  			uiModel.addAttribute("message", "You do not have access to create or edit tours.");
93      		return "tours/message";
94  		}
95  
96      	List<Tour> tours = toursService.findAllTours();
97      	List<POI> POIs = toursService.findAllCommonPOI();
98      	for (Iterator<Tour> iter = tours.iterator(); iter.hasNext(); ){
99      		Tour tour = iter.next();
100     		if (!toursService.hasAccessToEditTour(user, tour)) {
101     			iter.remove();
102     		}
103     	}
104     	for (Iterator<POI> iter = POIs.iterator(); iter.hasNext(); ){
105     		POI poi = iter.next();
106     		if (!toursService.hasAccessToEditPOI(user, poi)) {
107     			iter.remove();
108     		}
109     	}
110 
111 
112     	uiModel.addAttribute("tours", tours);
113     	uiModel.addAttribute("pois", POIs);
114     	return "tours/index";
115     }
116 
117 	@RequestMapping(value = "/view/{tourId}", method = RequestMethod.GET)
118     public String viewTour(HttpServletRequest request, Model uiModel, @PathVariable("tourId") long tourId) {
119     	try {
120     		User user = (User) request.getSession().getAttribute(Constants.KME_USER_KEY);
121 	    	Tour tour = toursService.findTourById(tourId);
122 
123 	    	if (!toursService.hasAccessToViewTour(user, tour)){
124 	    		uiModel.addAttribute("message", "You do not have access to view this tour.");
125 	    		return "tours/message";
126 	    	}
127 
128 	    	if (tour != null){
129 	    		if (tour.getPointsOfInterest() != null) {
130 	    			Collections.sort(tour.getPointsOfInterest());
131 	    		}
132 		    	try {
133 		    		if (tour.getFbText1() != null) tour.setFbText1(URLEncoder.encode(tour.getFbText1(), "UTF-8"));
134 		    		if (tour.getFbText2() != null) tour.setFbText2(URLEncoder.encode(tour.getFbText2(), "UTF-8"));
135 				} catch (Exception e) {
136 
137 				}
138 		    	uiModel.addAttribute("tour", tour);
139 		    	try {
140 					uiModel.addAttribute("pageUrl", URLEncoder.encode(request.getScheme() + "://" + request.getServerName() + ":" + request.getServerPort() + request.getContextPath() + "/tours/view/" + tour.getTourId(), "UTF-8"));
141 				} catch (UnsupportedEncodingException e) {
142 				}
143 	    	}
144     	} catch (Exception e) {
145     		LOG.error("Error retrieving tour." + tourId, e);
146     	}
147     	return "tours/tour";
148     }
149 
150 	@RequestMapping(value = "/details/{poiId}", method = RequestMethod.GET)
151     public String viewPoiDetails(HttpServletRequest request, Model uiModel, @PathVariable("poiId") long poiId) {
152     	try {
153 			POI poi = toursService.findPoiById(poiId);
154 
155 			if (poi != null && poi.getTourId() != null) {
156 				User user = (User) request.getSession().getAttribute(Constants.KME_USER_KEY);
157 		    	Tour tour = toursService.findTourById(poi.getTourId());
158 
159 		    	if (!toursService.hasAccessToViewTour(user, tour)){
160 		    		uiModel.addAttribute("message", "You do not have access to view details of this location.");
161 		    		return "tours/message";
162 		    	}
163 
164 		    	POI prevPoi = toursService.findPoiByOrder(poi.getTourId(), poi.getOrder() - 1);
165 		    	POI nextPoi = toursService.findPoiByOrder(poi.getTourId(), poi.getOrder() + 1);
166 
167 		    	if (prevPoi != null) {
168 		    		uiModel.addAttribute("prevPoi", prevPoi);
169 		    	}
170 		    	if (nextPoi != null) {
171 		    		uiModel.addAttribute("nextPoi", nextPoi);
172 		    	}
173 			}
174 
175 	    	if (poi != null && poi.getMedia() != null) {
176 	    		poi.setMedia(StringEscapeUtils.escapeJavaScript(poi.getMedia()));
177 	    	}
178 
179 	    	if (poi.getPhoneNumbers() != null) {
180 	    		for (POIPhoneNumber number : poi.getPhoneNumbers()){
181 	    			number.setFormattedNumber(String.format("(%s) %s-%s", number.getNumber().substring(0, 3), number.getNumber().substring(3, 6), number.getNumber().substring(6, 10)));
182 	    		}
183 	    	}
184 
185 	    	uiModel.addAttribute("poi", poi);
186 		} catch (Exception e) {
187 			LOG.error("Error retrieving POI details." + poiId, e);
188 		}
189     	return "tours/details";
190     }
191 
192     @SuppressWarnings("unchecked")
193 	@RequestMapping(value = "/map/{tourId}", method = RequestMethod.GET)
194     public String viewTourMap(HttpServletRequest request, Model uiModel, @PathVariable("tourId") long tourId) {
195     	try {
196     		User user = (User) request.getSession().getAttribute(Constants.KME_USER_KEY);
197     		Tour tour = toursService.findTourById(tourId);
198 
199 	    	if (!toursService.hasAccessToViewTour(user, tour)){
200 	    		uiModel.addAttribute("message", "You do not have access to view this tour.");
201 	    		return "tours/message";
202 	    	}
203 
204 	    	uiModel.addAttribute("tour", tour);
205 
206 	    	JsonConfig config = new JsonConfig();
207 	    	config.registerPropertyExclusion(POI.class, "tour");
208 	    	config.registerPropertyExclusion(POI.class, "versionNumber");
209 	    	config.registerPropertyExclusion(POI.class, "tourId");
210 	    	config.registerPropertyExclusion(POI.class, "permissions");
211 	    	config.registerPropertyExclusion(POI.class, "phoneNumbers");
212 	    	config.registerPropertyExclusion(Tour.class, "permissions");
213 	    	JSONObject json =  (JSONObject) JSONSerializer.toJSON(tour, config);
214 	    	JSONArray pointsOfInterest = json.getJSONArray("pointsOfInterest");
215 	    	for (Iterator<JSONObject> iter = pointsOfInterest.iterator(); iter.hasNext();) {
216 	    		try {
217 	    			JSONObject poi = iter.next();
218 	    			String mediaJson = poi.getString("media");
219 	    			if (!mediaJson.isEmpty()) {
220 		    			JSONArray media = (JSONArray) JSONSerializer.toJSON(mediaJson);
221 						poi.element("media", media);
222 	    			} else {
223 	    				poi.element("media", new JSONArray());
224 	    			}
225 				} catch (Exception e) {}
226 	    	}
227 	    	uiModel.addAttribute("tourJson", json.toString());
228     	} catch (Exception e) {
229     		LOG.error("Error viewing map for tour " + tourId, e);
230     	}
231     	return "tours/map";
232     }
233 
234     @SuppressWarnings("unchecked")
235 	@RequestMapping(value = "new", method = RequestMethod.GET)
236     public String edit(HttpServletRequest request, Model uiModel) {
237     	try {
238     		User user = (User) request.getSession().getAttribute(Constants.KME_USER_KEY);
239         	if (!toursService.hasAccessToPublish(user)) {
240     			uiModel.addAttribute("message", "You do not have access to create or edit tours.");
241         		return "tours/message";
242     		}
243 	    	List<POI> definedPois = toursService.findAllCommonPOI();
244 	    	for (Iterator<POI> iter = definedPois.iterator(); iter.hasNext(); ){
245 	    		POI poi = iter.next();
246 	    		if (!toursService.hasAccessToViewPOI(user, poi)) {
247 	    			iter.remove();
248 	    		}
249 	    	}
250 	    	JsonConfig config = new JsonConfig();
251 	    	config.registerPropertyExclusion(POI.class, "tour");
252 	    	config.registerPropertyExclusion(POI.class, "versionNumber");
253 	    	config.registerPropertyExclusion(POI.class, "tourId");
254 	    	config.registerPropertyExclusion(POI.class, "permissions");
255 	    	config.registerPropertyExclusion(POIPhoneNumber.class, "poi");
256 	    	config.registerPropertyExclusion(POIPhoneNumber.class, "poiId");
257 	    	config.registerPropertyExclusion(POIPhoneNumber.class, "id");
258 	    	config.registerPropertyExclusion(TourPermission.class, "tour");
259 	    	config.registerPropertyExclusion(TourPermission.class, "tourId");
260 	    	config.registerPropertyExclusion(TourPermission.class, "permissionId");
261 	    	JSONArray pointsOfInterest =  (JSONArray) JSONSerializer.toJSON(definedPois, config);
262 	    	for (Iterator<JSONObject> iter = pointsOfInterest.iterator(); iter.hasNext();) {
263 	    		try {
264 	    			JSONObject poi = iter.next();
265 	    			String mediaJson = poi.getString("media");
266 	    			if (!mediaJson.isEmpty()) {
267 		    			JSONArray media = (JSONArray) JSONSerializer.toJSON(mediaJson);
268 						poi.element("media", media);
269 	    			} else {
270 	    				poi.element("media", new JSONArray());
271 	    			}
272 				} catch (Exception e) {}
273 	    	}
274 	    	uiModel.addAttribute("pois", pointsOfInterest.toString());
275     	} catch (Exception e) {
276     		LOG.error("Error creating new tour.", e);
277     	}
278     	return "tours/edit";
279     }
280 
281     @SuppressWarnings("unchecked")
282 	@RequestMapping(value = "/edit/{tourId}", method = RequestMethod.GET)
283     public String editTour(Model uiModel, HttpServletRequest request, @PathVariable("tourId") long tourId) {
284     	try {
285     		User user = (User) request.getSession().getAttribute(Constants.KME_USER_KEY);
286         	if (!toursService.hasAccessToPublish(user)) {
287     			uiModel.addAttribute("message", "You do not have access to create or edit tours.");
288         		return "tours/message";
289     		}
290     		Tour tour = toursService.findTourById(tourId);
291 
292 	    	if (!toursService.hasAccessToEditTour(user, tour)){
293 	    		uiModel.addAttribute("message", "You do not have access to edit this tour.");
294 	    		return "tours/message";
295 	    	}
296 
297 	    	if (tour.getPointsOfInterest() != null) {
298 	    		Collections.sort(tour.getPointsOfInterest());
299 	    	}
300 	    	JsonConfig config = new JsonConfig();
301 	    	config.registerPropertyExclusion(POI.class, "tour");
302 	    	config.registerPropertyExclusion(POI.class, "versionNumber");
303 	    	config.registerPropertyExclusion(POI.class, "tourId");
304 	    	config.registerPropertyExclusion(POI.class, "permissions");
305 	    	config.registerPropertyExclusion(POIPhoneNumber.class, "poi");
306 	    	config.registerPropertyExclusion(POIPhoneNumber.class, "poiId");
307 	    	config.registerPropertyExclusion(POIPhoneNumber.class, "id");
308 	    	config.registerPropertyExclusion(POIEmailAddress.class, "poi");
309 	    	config.registerPropertyExclusion(POIEmailAddress.class, "poiId");
310 	    	config.registerPropertyExclusion(POIEmailAddress.class, "id");
311 	    	config.registerPropertyExclusion(TourPermission.class, "tour");
312 	    	config.registerPropertyExclusion(TourPermission.class, "tourId");
313 	    	config.registerPropertyExclusion(TourPermission.class, "permissionId");
314 	    	JSONObject json =  (JSONObject) JSONSerializer.toJSON(tour, config);
315 	    	JSONArray pointsOfInterest = json.getJSONArray("pointsOfInterest");
316 	    	if (pointsOfInterest != null) {
317 		    	for (Iterator<JSONObject> iter = pointsOfInterest.iterator(); iter.hasNext();) {
318 		    		try {
319 		    			JSONObject poi = iter.next();
320 		    			String mediaJson = poi.getString("media");
321 		    			if (!mediaJson.isEmpty()) {
322 			    			JSONArray media = (JSONArray) JSONSerializer.toJSON(mediaJson);
323 							poi.element("media", media);
324 		    			} else {
325 		    				poi.element("media", new JSONArray());
326 		    			}
327 					} catch (Exception e) {
328 						LOG.error("Problem modifying media collection for tour POI", e);
329 					}
330 		    	}
331 	    	}
332 	    	uiModel.addAttribute("tourJson", json.toString());
333 
334 	    	List<POI> definedPois = toursService.findAllCommonPOI();
335 	    	for (Iterator<POI> iter = definedPois.iterator(); iter.hasNext(); ){
336 	    		POI poi = iter.next();
337 	    		if (!toursService.hasAccessToViewPOI(user, poi)) {
338 	    			iter.remove();
339 	    		}
340 	    	}
341 	    	pointsOfInterest =  (JSONArray) JSONSerializer.toJSON(definedPois, config);
342 	    	for (Iterator<JSONObject> iter = pointsOfInterest.iterator(); iter.hasNext();) {
343 	    		try {
344 	    			JSONObject poi = iter.next();
345 	    			String mediaJson = poi.getString("media");
346 	    			if (!mediaJson.isEmpty()) {
347 		    			JSONArray media = (JSONArray) JSONSerializer.toJSON(mediaJson);
348 						poi.element("media", media);
349 	    			} else {
350 	    				poi.element("media", new JSONArray());
351 	    			}
352 				} catch (Exception e) {
353 					LOG.error("Problem modifying media collection for common POI", e);
354 				}
355 	    	}
356 	    	uiModel.addAttribute("pois", pointsOfInterest.toString());
357     	} catch (Exception e) {
358     		LOG.error("Error editing tour " + tourId, e);
359     	}
360     	return "tours/edit";
361     }
362 
363     @RequestMapping(value = "/verify", method = RequestMethod.GET)
364     @ResponseBody
365     public String verifyAdsGroup(@RequestParam("group") String groupName) {
366     	boolean valid = true;//adsService.validateAdsGroup(groupName);
367     	Map<String, Object> result = new HashMap<String, Object>();
368     	result.put("group", groupName);
369     	result.put("valid", valid);
370 
371     	return JSONSerializer.toJSON(result).toString();
372     }
373 
374     @RequestMapping(value = "edit", method = RequestMethod.POST)
375     public String save(HttpServletRequest request, @RequestParam("data") String postData,  Model uiModel) {
376     	User user = (User) request.getSession().getAttribute(Constants.KME_USER_KEY);
377     	if (!toursService.hasAccessToPublish(user)) {
378 			uiModel.addAttribute("message", "You do not have access to create or edit tours.");
379     		return "tours/message";
380 		}
381 
382     	Tour tour = convertTourFromJson(postData);
383 
384     	if (tour.getTourId() != null) {
385     		Tour existingTour = toursService.findTourById(tour.getTourId());
386     		if (existingTour != null && !toursService.hasAccessToEditTour(user, existingTour)){
387         		uiModel.addAttribute("message", "You do not have access to edit this tour.");
388         		return "tours/message";
389         	}
390     	}
391 
392     	toursService.saveTour(tour);
393     	return "redirect:/tours/publish";
394     }
395 
396     @RequestMapping(value = "delete/{tourId}", method = RequestMethod.GET)
397     public String delete(Model uiModel, HttpServletRequest request, @PathVariable("tourId") Long tourId) {
398     	User user = (User) request.getSession().getAttribute(Constants.KME_USER_KEY);
399     	if (!toursService.hasAccessToPublish(user)) {
400 			uiModel.addAttribute("message", "You do not have access to create or edit tours.");
401     		return "tours/message";
402 		}
403     	Tour tour = toursService.findTourById(tourId);
404     	if (!toursService.hasAccessToEditTour(user, tour)){
405     		uiModel.addAttribute("message", "You do not have access to delete this tour.");
406     		return "tours/message";
407     	}
408     	toursService.deleteTourById(tourId);
409     	return "redirect:/tours/publish";
410     }
411 
412     @RequestMapping(value = "copy/{tourId}", method = RequestMethod.GET)
413     public String copy(Model uiModel, HttpServletRequest request, @PathVariable("tourId") Long tourId) {
414     	User user = (User) request.getSession().getAttribute(Constants.KME_USER_KEY);
415     	if (!toursService.hasAccessToPublish(user)) {
416 			uiModel.addAttribute("message", "You do not have access to create or edit tours.");
417     		return "tours/message";
418 		}
419     	Tour tour = toursService.findTourById(tourId);
420     	if (!toursService.hasAccessToEditTour(user, tour)){
421     		uiModel.addAttribute("message", "You do not have access to delete this tour.");
422     		return "tours/message";
423     	}
424     	toursService.duplicateTourById(tourId);
425     	return "redirect:/tours/publish";
426     }
427 
428     @RequestMapping(value = "poi/new", method = RequestMethod.GET)
429     public String editPoi(Model uiModel, HttpServletRequest request) {
430     	User user = (User) request.getSession().getAttribute(Constants.KME_USER_KEY);
431     	if (!toursService.hasAccessToPublish(user)) {
432 			uiModel.addAttribute("message", "You do not have access to create or edit tours.");
433     		return "tours/message";
434 		}
435     	return "tours/editPoi";
436     }
437 
438 	@RequestMapping(value = "poi/edit/{poiId}", method = RequestMethod.GET)
439     public String editPoi(HttpServletRequest request, Model uiModel, @PathVariable("poiId") long poiId) {
440 		User user = (User) request.getSession().getAttribute(Constants.KME_USER_KEY);
441     	if (!toursService.hasAccessToPublish(user)) {
442 			uiModel.addAttribute("message", "You do not have access to create or edit tours.");
443     		return "tours/message";
444 		}
445 
446 		POI poi = toursService.findPoiById(poiId);
447     	if (!toursService.hasAccessToEditPOI(user, poi)){
448     		uiModel.addAttribute("message", "You do not have access to edit this point of interest.");
449     		return "tours/message";
450     	}
451 
452     	JsonConfig config = new JsonConfig();
453     	config.registerPropertyExclusion(POI.class, "tour");
454     	config.registerPropertyExclusion(POI.class, "tourId");
455     	config.registerPropertyExclusion(POIPhoneNumber.class, "poi");
456     	config.registerPropertyExclusion(POIPhoneNumber.class, "id");
457     	config.registerPropertyExclusion(POIPhoneNumber.class, "poiId");
458     	config.registerPropertyExclusion(POIEmailAddress.class, "poi");
459     	config.registerPropertyExclusion(POIEmailAddress.class, "poiId");
460     	config.registerPropertyExclusion(POIEmailAddress.class, "id");
461     	config.registerPropertyExclusion(POIPermission.class, "poiId");
462     	config.registerPropertyExclusion(POIPermission.class, "poi");
463     	config.registerPropertyExclusion(POIPermission.class, "permissionId");
464     	JSONObject json =  (JSONObject) JSONSerializer.toJSON(poi, config);
465 		String mediaJson = json.getString("media");
466 		if (!mediaJson.isEmpty()) {
467 			JSONArray media = (JSONArray) JSONSerializer.toJSON(mediaJson);
468 			json.element("media", media);
469 		} else {
470 			json.element("media", new JSONArray());
471 		}
472     	uiModel.addAttribute("poiJson", json.toString());
473     	return "tours/editPoi";
474     }
475 
476     @RequestMapping(value = "poi/edit", method = RequestMethod.POST)
477     public String savePoi(HttpServletRequest request, @RequestParam("data") String postData,  Model uiModel) {
478     	User user = (User) request.getSession().getAttribute(Constants.KME_USER_KEY);
479     	if (!toursService.hasAccessToPublish(user)) {
480 			uiModel.addAttribute("message", "You do not have access to create or edit tours.");
481     		return "tours/message";
482 		}
483 
484     	POI poi = convertPoiFromJson(postData);
485 
486     	if (poi != null && poi.getPoiId() != null) {
487     		POI existingPOI = toursService.findPoiById(poi.getPoiId());
488 
489     		if (!toursService.hasAccessToEditPOI(user, existingPOI)){
490         		uiModel.addAttribute("message", "You do not have access to edit this point of interest.");
491         		return "tours/message";
492         	}
493     	}
494 
495     	toursService.savePoi(poi);
496     	return "redirect:/tours/publish";
497     }
498 
499     @RequestMapping(value = "poi/copy/{poiId}", method = RequestMethod.GET)
500     public String copyPoi(@PathVariable("poiId") Long poiId) {
501     	toursService.duplicatePoiById(poiId);
502     	return "redirect:/tours/publish";
503     }
504 
505     @RequestMapping(value = "poi/delete/{poiId}", method = RequestMethod.GET)
506     public String deletePoi(HttpServletRequest request, @PathVariable("poiId") Long poiId, Model uiModel) {
507     	User user = (User) request.getSession().getAttribute(Constants.KME_USER_KEY);
508     	if (!toursService.hasAccessToPublish(user)) {
509 			uiModel.addAttribute("message", "You do not have access to create or edit tours.");
510     		return "tours/message";
511 		}
512 
513     	POI poi = toursService.findPoiById(poiId);
514     	if (!toursService.hasAccessToEditPOI(user, poi)){
515     		uiModel.addAttribute("message", "You do not have access to delete this point of interest.");
516     		return "tours/message";
517     	}
518 
519     	toursService.deletePoiById(poiId);
520     	return "redirect:/tours/publish";
521     }
522 
523     @RequestMapping(value = "kml/{tourId}", method = RequestMethod.GET)
524     public String downloadKml(@PathVariable("tourId") Long tourId, HttpServletResponse response) {
525     	Tour tour = toursService.findTourById(tourId);
526     	Kml kml = toursService.createTourKml(tour);
527     	OutputStream os = new ByteArrayOutputStream();
528     	try {
529 			kml.marshal(os);
530 		} catch (Exception e) {
531 		}
532     	byte [] data = os.toString().getBytes();
533     	response.setContentType("application/vnd.google-earth.kml+xml");
534 		response.setContentLength(data.length);
535 		response.setHeader("Content-Disposition", "attachment; filename=\"" + tour.getName() + ".kml\"" );
536 		try {
537 			response.getOutputStream().write(data, 0, data.length);
538 		} catch (IOException e) {
539 		}
540     	return null;
541     }
542 
543     @RequestMapping(value = "kml", method = RequestMethod.POST)
544     public String downloadKml(@RequestParam("data") String postData, @RequestParam("name") String name, HttpServletResponse response) {
545     	String newline = System.getProperty("line.separator");
546     	byte [] data = postData.replace("<EOL>", newline).getBytes();
547     	response.setContentType("application/vnd.google-earth.kml+xml");
548 		response.setContentLength(data.length);
549 		response.setHeader("Content-Disposition", "attachment; filename=\"" + name + ".kml\"" );
550 		try {
551 			response.getOutputStream().write(data, 0, data.length);
552 		} catch (IOException e) {
553 		}
554     	return null;
555     }
556 
557     @SuppressWarnings("unchecked")
558 	private Tour convertTourFromJson(String json) {
559     	Tour tour = new Tour();
560     	JSONObject tourJson = (JSONObject) JSONSerializer.toJSON(json);
561 
562     	try {
563     		tour.setTourId(tourJson.getLong("id"));
564     	} catch (Exception e) {
565     		tour.setTourId(null);
566     	}
567     	tour.setName(tourJson.getString("name"));
568     	tour.setDescription(tourJson.getString("description"));
569     	tour.setImageUrl(tourJson.getString("imageUrl"));
570     	tour.setPath(tourJson.getString("path"));
571 
572     	tour.setTweetText1(tourJson.getString("tweetText1"));
573     	tour.setTweetText2(tourJson.getString("tweetText2"));
574     	tour.setFbText1(tourJson.getString("fbText1"));
575     	tour.setFbText2(tourJson.getString("fbText2"));
576 
577     	tour.setTweetText1Enabled(tourJson.getBoolean("tweetText1Enabled") ? "T" : "F");
578     	tour.setTweetText2Enabled(tourJson.getBoolean("tweetText2Enabled") ? "T" : "F");
579     	tour.setFbText1Enabled(tourJson.getBoolean("fbText1Enabled") ? "T" : "F");
580     	tour.setFbText2Enabled(tourJson.getBoolean("fbText2Enabled") ? "T" : "F");
581 
582     	try {
583     		tour.setVersionNumber(tourJson.getLong("version"));
584     	} catch (Exception e) {
585     		tour.setVersionNumber(null);
586     	}
587     	try {
588     		tour.setDistance(tourJson.getLong("distance"));
589     	} catch (Exception e) {
590     		tour.setDistance(null);
591     	}
592 
593     	JSONArray permissionsArray = tourJson.getJSONArray("permissions");
594 		Set<TourPermission> permissions = new HashSet<TourPermission>();
595 		for (Iterator<JSONObject> iter = permissionsArray.iterator(); iter.hasNext();) {
596 			try {
597 				JSONObject permission = iter.next();
598 				TourPermission tourPermission = new TourPermission();
599 
600 				tourPermission.setGroupName(permission.getString("group"));
601 				tourPermission.setType(permission.getString("type"));
602 				tourPermission.setTour(tour);
603 				tourPermission.setTourId(tour.getTourId());
604 
605 				permissions.add(tourPermission);
606 			} catch (Exception e) {
607 				LOG.error("Error parsing tour permission.", e);
608 			}
609 		}
610 		tour.setPermissions(permissions);
611 
612     	JSONArray pointsOfInterest = tourJson.getJSONArray("POIs");
613 		List<POI> POIs = new ArrayList<POI>();
614 		for (Iterator<JSONObject> iter = pointsOfInterest.iterator(); iter.hasNext();) {
615 			JSONObject pointOfInterest = iter.next();
616 			POI poi = new POI();
617 
618 			try {
619 				poi.setPoiId(pointOfInterest.getLong("poiId"));
620 	    	} catch (Exception e) {
621 	    		poi.setPoiId(null);
622 	    	}
623 			try {
624 				poi.setName(pointOfInterest.getString("name"));
625 	    	} catch (Exception e) {
626 	    		poi.setName(null);
627 	    	}
628 			try {
629 				poi.setOfficialName(pointOfInterest.getString("officialName"));
630 	    	} catch (Exception e) {
631 	    		poi.setOfficialName(null);
632 	    	}
633 			try {
634 				poi.setDescription(pointOfInterest.getString("description"));
635 	    	} catch (Exception e) {
636 	    		poi.setDescription(null);
637 	    	}
638 			try {
639 				poi.setShortDescription(pointOfInterest.getString("shortDescription"));
640 	    	} catch (Exception e) {
641 	    		poi.setShortDescription(null);
642 	    	}
643 			try {
644 				poi.setLocationId(pointOfInterest.getString("iuBuildingCode"));
645 	    	} catch (Exception e) {
646 	    		try {
647 					poi.setLocationId(pointOfInterest.getString("venueId"));
648 		    	} catch (Exception ex) {
649 		    		poi.setLocationId(null);
650 		    	}
651 	    	}
652 			poi.setType(pointOfInterest.getString("type"));
653 
654 			try {
655 				poi.setDistanceToNextPoi(pointOfInterest.getLong("distanceToNext"));
656 	    	} catch (Exception e) {
657 	    		poi.setDistanceToNextPoi(null);
658 	    	}
659 
660 			poi.setOrder(pointOfInterest.getInt("order"));
661 
662 			JSONObject location = pointOfInterest.getJSONObject("location");
663 			poi.setLatitude(((Double)location.getDouble("lat")).floatValue());
664 			poi.setLongitude(((Double)location.getDouble("lng")).floatValue());
665 			try {
666 				poi.setMedia(pointOfInterest.getString("media"));
667 			} catch (Exception e) {}
668 			try {
669 				poi.setUrl(pointOfInterest.getString("url"));
670 			} catch (Exception e) {}
671 			try {
672 				poi.setThumbnailUrl(pointOfInterest.getString("thumbnailUrl"));
673 	    	} catch (Exception e) {
674 	    		poi.setThumbnailUrl(null);
675 	    	}
676 			try {
677 				poi.setFbLikeUrl(pointOfInterest.getString("fbLikeUrl"));
678 	    	} catch (Exception e) {
679 	    		poi.setFbLikeUrl(null);
680 	    	}
681 			try {
682 				poi.setFbLikeButtonEnabled(pointOfInterest.getBoolean("fbLikeButtonEnabled") ? "T" : "F");
683 	    	} catch (Exception e) {
684 	    		poi.setFbLikeButtonEnabled("F");
685 	    	}
686 
687 			JSONArray phoneNumbers = pointOfInterest.getJSONArray("phoneNumbers");
688 			if (phoneNumbers != null) {
689 				for (Iterator<JSONObject> iter2 = phoneNumbers.iterator(); iter2.hasNext();) {
690 					JSONObject phnNumber = iter2.next();
691 					POIPhoneNumber phoneNumber = new POIPhoneNumber();
692 					try {
693 						phoneNumber.setName(phnNumber.getString("name"));
694 			    	} catch (Exception e) {
695 			    		phoneNumber.setName(null);
696 			    	}
697 					try {
698 						phoneNumber.setNumber(phnNumber.getString("value"));
699 			    	} catch (Exception e) {
700 			    		phoneNumber.setNumber(null);
701 			    	}
702 					phoneNumber.setPoi(poi);
703 					phoneNumber.setPoiId(poi.getPoiId());
704 					poi.getPhoneNumbers().add(phoneNumber);
705 				}
706 			}
707 
708 			JSONArray emailAddresses = pointOfInterest.getJSONArray("emailAddresses");
709 			if (emailAddresses != null) {
710 				for (Iterator<JSONObject> iter2 = emailAddresses.iterator(); iter2.hasNext();) {
711 					JSONObject email = iter2.next();
712 					POIEmailAddress emailAddress = new POIEmailAddress();
713 					try {
714 						emailAddress.setName(email.getString("name"));
715 			    	} catch (Exception e) {
716 			    		emailAddress.setName(null);
717 			    	}
718 					try {
719 						emailAddress.setAddress(email.getString("address"));
720 			    	} catch (Exception e) {
721 			    		emailAddress.setAddress(null);
722 			    	}
723 					emailAddress.setPoi(poi);
724 					emailAddress.setPoiId(poi.getPoiId());
725 					poi.getEmailAddresses().add(emailAddress);
726 				}
727 			}
728 
729 			poi.setTourId(tour.getTourId());
730 			poi.setTour(tour);
731 			POIs.add(poi);
732 		}
733     	tour.setPointsOfInterest(POIs);
734 
735     	return tour;
736     }
737 
738 	@SuppressWarnings("unchecked")
739 	private POI convertPoiFromJson(String json) {
740     	POI poi = new POI();
741     	JSONObject pointOfInterest = (JSONObject) JSONSerializer.toJSON(json);
742 
743 		try {
744 			poi.setPoiId(pointOfInterest.getLong("id"));
745     	} catch (Exception e) {
746     		poi.setPoiId(null);
747     	}
748 		try {
749 			poi.setVersionNumber(pointOfInterest.getLong("version"));
750     	} catch (Exception e) {
751     		poi.setVersionNumber(null);
752     	}
753 
754 		try {
755 			poi.setName(pointOfInterest.getString("name"));
756     	} catch (Exception e) {
757     		poi.setName(null);
758     	}
759 		try {
760 			poi.setOfficialName(pointOfInterest.getString("officialName"));
761     	} catch (Exception e) {
762     		poi.setOfficialName(null);
763     	}
764 		try {
765 			poi.setDescription(pointOfInterest.getString("description"));
766     	} catch (Exception e) {
767     		poi.setDescription(null);
768     	}
769 		try {
770 			poi.setShortDescription(pointOfInterest.getString("shortDescription"));
771     	} catch (Exception e) {
772     		poi.setShortDescription(null);
773     	}
774 		try {
775 			poi.setLocationId(pointOfInterest.getString("locationId"));
776     	} catch (Exception e) {
777     		poi.setLocationId(null);
778     	}
779 		try {
780 			poi.setUrl(pointOfInterest.getString("url"));
781     	} catch (Exception e) {
782     		poi.setUrl(null);
783     	}
784 		try {
785 			poi.setThumbnailUrl(pointOfInterest.getString("thumbnailUrl"));
786     	} catch (Exception e) {
787     		poi.setThumbnailUrl(null);
788     	}
789 		try {
790 			poi.setFbLikeUrl(pointOfInterest.getString("fbLikeUrl"));
791     	} catch (Exception e) {
792     		poi.setFbLikeUrl(null);
793     	}
794 		poi.setFbLikeButtonEnabled(pointOfInterest.getBoolean("fbLikeButtonEnabled") ? "T" : "F");
795 		poi.setType(pointOfInterest.getString("type"));
796 
797 		JSONArray permissionsArray = pointOfInterest.getJSONArray("permissions");
798 		Set<POIPermission> permissions = new HashSet<POIPermission>();
799 		for (Iterator<JSONObject> iter = permissionsArray.iterator(); iter.hasNext();) {
800 			try {
801 				JSONObject permission = iter.next();
802 				POIPermission poiPermission = new POIPermission();
803 
804 				poiPermission.setGroupName(permission.getString("group"));
805 				poiPermission.setType(permission.getString("type"));
806 				poiPermission.setPoi(poi);
807 				poiPermission.setPoiId(poi.getPoiId());
808 
809 				permissions.add(poiPermission);
810 			} catch (Exception e) {
811 				LOG.error("Error parsing tour permission.", e);
812 			}
813 		}
814 		poi.setPermissions(permissions);
815 
816 		JSONArray phoneNumbers = pointOfInterest.getJSONArray("phoneNumbers");
817 		if (phoneNumbers != null) {
818 			for (Iterator<JSONObject> iter2 = phoneNumbers.iterator(); iter2.hasNext();) {
819 				JSONObject phnNumber = iter2.next();
820 				POIPhoneNumber phoneNumber = new POIPhoneNumber();
821 				try {
822 					phoneNumber.setName(phnNumber.getString("name"));
823 		    	} catch (Exception e) {
824 		    		phoneNumber.setName(null);
825 		    	}
826 				try {
827 					phoneNumber.setNumber(phnNumber.getString("value"));
828 		    	} catch (Exception e) {
829 		    		phoneNumber.setNumber(null);
830 		    	}
831 				phoneNumber.setPoi(poi);
832 				phoneNumber.setPoiId(poi.getPoiId());
833 				poi.getPhoneNumbers().add(phoneNumber);
834 			}
835 		}
836 		JSONArray emailAddresses = pointOfInterest.getJSONArray("emailAddresses");
837 		if (emailAddresses != null) {
838 			for (Iterator<JSONObject> iter2 = emailAddresses.iterator(); iter2.hasNext();) {
839 				JSONObject email = iter2.next();
840 				POIEmailAddress emailAddress = new POIEmailAddress();
841 				try {
842 					emailAddress.setName(email.getString("name"));
843 		    	} catch (Exception e) {
844 		    		emailAddress.setName(null);
845 		    	}
846 				try {
847 					emailAddress.setAddress(email.getString("address"));
848 		    	} catch (Exception e) {
849 		    		emailAddress.setAddress(null);
850 		    	}
851 				emailAddress.setPoi(poi);
852 				emailAddress.setPoiId(poi.getPoiId());
853 				poi.getEmailAddresses().add(emailAddress);
854 			}
855 		}
856 
857 		poi.setTour(null);
858 		poi.setTourId(null);
859 
860 		JSONObject location = pointOfInterest.getJSONObject("location");
861 		poi.setLatitude(((Double)location.getDouble("latitude")).floatValue());
862 		poi.setLongitude(((Double)location.getDouble("longitude")).floatValue());
863 		try {
864 			poi.setMedia(pointOfInterest.getString("media"));
865 		} catch (Exception e) {}
866 
867     	return poi;
868     }
869 
870 }